Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/9C9A7614DE7C11EBB1191063F8AEA228.roa
File: 9C9A7614DE7C11EBB1191063F8AEA228.roa (raw, json)
Hash identifier: syinLKpAl//f2BEe6KYX31IZj04lDHjk0Tp/mellwQo=
Subject key identifier: C9:F1:48:0E:CF:C4:ED:32:B1:C7:E2:89:AF:EA:45:0C:F4:74:13:26
Certificate issuer: /CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Certificate serial: 08EC
Authority key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/9C9A7614DE7C11EBB1191063F8AEA228.roa
Signing time: Tue 06 Jul 2021 17:07:15 +0000
ROA not before: Tue 06 Jul 2021 17:07:09 +0000
ROA not after: Wed 31 Dec 2031 17:07:09 +0000
asID: 32653
IP address blocks: 154.72.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2284 (0x8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Validity
Not Before: Jul 6 17:07:09 2021 GMT
Not After : Dec 31 17:07:09 2031 GMT
Subject: CN=60e48dc3-2ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:32:6f:2a:3b:9a:38:4c:fe:47:d7:a5:66:e7:
92:fb:2c:c4:92:51:92:af:b1:8a:12:20:e0:de:59:
03:29:3e:a6:c5:fa:01:af:09:7b:b1:11:9c:a6:4d:
4f:e1:df:31:d6:fd:81:90:94:0f:c9:c0:4f:d8:37:
95:80:3d:db:8c:3b:c6:91:3a:36:03:63:f1:40:22:
3b:26:ae:0d:61:c5:a4:64:98:e0:20:36:f2:c7:a5:
b4:a4:3b:f7:24:63:4f:70:91:95:4d:94:8f:5e:e6:
d7:42:63:15:44:59:03:66:b6:49:1c:b9:4f:34:33:
3a:d2:ac:cf:56:b2:00:cb:96:0f:67:79:52:47:30:
33:2b:7c:68:bb:fc:51:db:26:7c:49:08:cc:fb:15:
d6:74:58:40:c9:2a:d4:1d:e3:de:c6:5e:3f:18:c5:
e5:c5:6d:7f:a9:1a:43:6b:ed:c0:ff:fd:86:f2:0e:
78:c7:d0:86:63:76:68:d9:8f:47:18:dc:ce:11:19:
33:49:e5:e8:00:d9:4a:fd:6f:d5:c8:0a:af:bc:e4:
8d:9d:8d:cb:38:4a:c2:6c:14:db:28:af:02:6e:cb:
ea:90:a4:04:ec:df:b2:10:11:0b:ec:4c:59:58:f9:
0c:43:da:b6:52:6e:e1:c5:4e:42:97:97:3a:74:6e:
a6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F1:48:0E:CF:C4:ED:32:B1:C7:E2:89:AF:EA:45:0C:F4:74:13:26
X509v3 Authority Key Identifier:
keyid:23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/9C9A7614DE7C11EBB1191063F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.96.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:14:b6:76:bb:fa:8a:91:e9:ca:13:77:4d:16:64:a3:15:0d:
dc:e6:10:2b:40:fc:eb:d6:b9:f0:41:cd:fa:43:46:01:f7:11:
a7:26:a1:a1:eb:6a:49:fe:da:16:59:95:d8:68:f3:7f:97:c6:
ec:3e:69:3a:f8:09:e4:45:f2:52:5e:8f:72:e9:87:3e:00:59:
0f:57:19:ea:19:42:53:fd:bb:92:14:e7:9b:2c:78:69:cd:fa:
15:db:16:6d:10:fd:8a:8d:78:6c:88:35:bb:50:1d:52:98:0c:
78:14:05:6e:9a:49:e3:f7:12:7e:cc:95:be:e6:1f:f9:94:93:
ea:c9:64:c4:21:85:71:8a:6d:86:99:37:43:e3:3c:c4:06:e9:
ee:c9:67:0f:e5:83:a9:87:e4:43:f7:df:e1:27:d4:e1:6e:a2:
08:7f:3d:ee:88:1b:0f:8b:da:ca:22:74:ab:61:41:21:99:0d:
bb:2e:a6:75:bb:7c:7b:60:76:ca:a0:73:89:9b:2c:b3:3c:65:
84:91:c5:e6:b2:39:ee:12:eb:f8:fb:76:ac:49:72:fe:d1:22:
30:3d:0b:cf:01:f6:6b:84:b3:a3:d7:e6:05:2f:6b:ef:ce:1c:
bb:81:5d:dc:e1:18:1b:5f:8c:01:74:fb:a0:86:23:ae:89:0b:
91:3b:12:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org